組織

Google Gemini CLI

Incidents implicated systems

インシデント 12102 Report
Malicious Nx npm Packages Reportedly Weaponize AI Coding Agents for Data Exfiltration

2025-08-21

Malicious versions of the popular Nx monorepo tool and plugins were reportedly published to npm after attackers compromised its CI workflow. The malware's postinstall script reportedly harvested credentials and exfiltrated data, reportedly weaponizing local AI coding agents such as Claude Code, Gemini, and Amazon q. By invoking unsafe flags, it allegedly coerced the tools into scanning developer machines for sensitive files, marking one of the first known AI-assisted supply chain attacks.

もっと

Entity

Malicious actors compromising Nx’s CI/CD pipeline and publishing tainted npm packages

もっと
Entity

Anthropic

もっと
Entity

Google

もっと
Entity

Amazon

もっと
Entity

Nx users and organizations installing compromised npm packages

もっと
Entity

Nx (monorepo tool and plugins)

もっと
Entity

npm registry

もっと
Entity

Claude Code CLI

もっと
Entity

Amazon q CLI

もっと
Entity

GitHub

もっと